Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/5iORgHmIX8fOf7X_Q-RH9ILeFl0.roa
File: 5iORgHmIX8fOf7X_Q-RH9ILeFl0.roa (raw, json)
Hash identifier: c6bvlvwjH+eAdyGjUBlq/Cibemv+ZpF1CetWZEhkLvE=
Subject key identifier: E6:23:91:80:79:88:5F:C7:CE:7F:B5:FF:43:E4:47:F4:82:DE:16:5D
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 08A8
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5iORgHmIX8fOf7X_Q-RH9ILeFl0.roa
Signing time: Tue 08 Dec 2020 09:01:57 +0000
ROA not before: Tue 08 Dec 2020 09:01:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216 (0x8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 8 09:01:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E623918079885FC7CE7FB5FF43E447F482DE165D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2f:51:03:34:83:82:5c:27:5e:53:ba:ea:c9:
92:ce:af:ac:0f:22:39:e9:b9:f5:f9:98:cd:5d:ef:
ec:4c:e4:e0:63:50:1e:d2:c3:80:e5:bd:ba:91:b3:
4d:30:3e:2b:2b:8f:53:0a:2d:93:bf:23:68:c4:61:
f5:de:9b:3f:38:92:22:78:61:7d:c6:df:96:1d:5b:
84:51:49:34:6e:67:dc:30:ca:34:1b:68:ed:41:60:
e3:b4:a3:eb:88:59:c5:c5:f2:48:b9:92:63:ef:22:
61:1e:ce:b3:06:f5:9f:67:09:20:f8:77:53:4b:5c:
84:96:6c:ae:d7:21:f3:13:14:8d:3f:52:9f:99:e5:
22:6f:6e:3a:9a:4b:4d:ee:67:99:3b:cc:38:75:c4:
bd:de:3f:74:f9:b4:ce:1c:02:c5:a9:e5:32:0c:5b:
ec:91:c5:aa:fb:c6:93:1d:52:5b:e5:ee:4f:77:b9:
32:5b:e9:51:be:56:b6:63:da:96:b9:a9:bb:71:2d:
a5:55:13:6a:52:ce:c3:cf:c0:0a:db:72:d4:1c:2d:
50:54:ce:a3:e7:dd:32:2a:68:28:e4:5b:71:d2:01:
94:cc:e7:52:a7:11:52:da:0e:25:8a:92:e5:6a:27:
e2:f8:05:79:9e:bf:71:a0:1c:3f:4c:97:1e:83:30:
ad:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:23:91:80:79:88:5F:C7:CE:7F:B5:FF:43:E4:47:F4:82:DE:16:5D
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5iORgHmIX8fOf7X_Q-RH9ILeFl0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:c6:df:ac:8f:18:10:ab:a2:4f:65:4b:44:54:a2:29:93:82:
0e:7b:e3:6d:61:59:ec:86:e7:1f:2e:1f:95:c9:7c:2d:eb:b9:
ab:ad:29:c0:e2:fc:c3:72:ab:5c:1f:a7:76:9c:2a:0b:aa:7c:
09:45:96:b9:f5:6b:ee:7e:21:8c:d4:93:d4:90:ef:dc:96:8f:
e2:4c:7e:07:4c:86:f7:10:61:bd:f0:36:b8:18:be:0f:6e:8d:
a6:7e:6d:96:6d:50:59:7f:cc:cd:6f:24:22:12:15:13:8f:7c:
7a:c2:f3:a7:d8:7c:7f:a5:a1:51:30:b4:7b:0b:9f:24:15:fe:
65:e8:36:9e:de:bf:1c:c1:e1:b7:10:dd:e2:04:52:67:8f:e7:
5c:f7:45:a1:cc:bb:db:c5:3c:bc:b7:28:fe:c1:73:66:d5:a0:
35:dc:17:76:d6:f4:57:90:c7:76:d7:a0:c4:a5:a9:be:93:4e:
35:26:c7:01:fd:cf:be:39:66:cb:4b:a0:80:02:fb:24:67:3b:
f0:c3:87:b0:ed:2c:da:80:a3:b6:84:63:a6:cd:4b:41:06:1b:
50:a7:6f:3e:de:41:8f:3c:1c:b0:c7:d5:9d:55:4d:f8:27:23:
1f:53:fb:ad:2e:d4:8f:c0:a6:35:c0:52:ff:7e:3c:26:1f:47:
b4:d2:47:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org